Other Sites

LinuxGizmos.com

MINIX Elite EU715-AI Mini PC Combines Meteor Lake Performance and dual 2.5GbE Ports

The MINIX Elite EU715-AI is a compact mini PC based on Intel’s Meteor Lake-H processor architecture. It features integrated Intel Arc Graphics, Wi-Fi 6E, dual 2.5G Ethernet ports, and quad-screen display support.

Tor Project blog

New Release: Tor Browser 14.5.1

This version includes important security updates to Firefox.

Privacy is possible – even when it feels out of reach

In these circumstances, it can feel like it's hopeless to fight back. These companies already have so much—why should we bother to jump through more hoops to protect our personal privacy? Won't this surveillance machine just do its thing anyway?

9to5Linux

Thunderbird 138 Adds New Default Color Override for High Contrast Mode on Linux

This release comes with a few interesting changes, including message disposition buttons for new email alerts, support for customizing the new email notification in macOS Settings, and a new default color override for High Contrast mode on Linux and macOS systems.

Firefox 139 Is Now Available for Public Beta Testing, Here’s What to Expect

Firefox 139 appears to come with a change that (most probably) many of you will not like, namely a pop-up that forces you to accept the Firefox Terms of Use and Mozilla’s Privacy Notice, whether you agree to them or not. And it looks like if you don’t click on the “Confirm and continue” button, you won’t be able to use Firefox anymore.

4MLinux 48.0 Is Now Available for Download, Powered by Linux Kernel 6.12 LTS

Arriving a little over four months after 4MLinux 47.0, the 4MLinux 48.0 release features support for new apps and components, including the Kino IEEE 1394 DV non-linear video editor, the VVenC H.266/VVC encoder, FreeTube YouTube client, and the Bristol emulator for synthesizers, electric pianos, and organs.

Trinity Desktop Environment R14.1.4 Released with Support for Ubuntu 25.04

Highlights of Trinity Desktop Environment (TDE) R14.1.4 include support for Unicode surrogate characters and planes above zero, such as emojis, support for Ubuntu 25.04 (Plucky Puffin) and the upcoming Fedora Linux 43 distributions, tab support in KPDF document viewer, and support for clickable links in calendar events.

qBittorrent 5.1 Open-Source BitTorrent Client Released as a Major Update

Highlights of qBittorrent 5.1 include support for modern functions to get random numbers under Linux and Windows systems to improve security, support for the Thunar file manager on Linux, support for the “eXact Length” parameter when creating magnet URIs, support for fetching the tracker list from URLs, announce_port support, drag support to the torrent content widget, and the ability to display the external IP address in the status bar.

Mozilla Firefox 138 Is Now Available for Download, Here’s What’s New

Mozilla Firefox 138 introduces support for copying links for background tabs using the tabstrip context menu on Linux and macOS systems, an improved address and credit card autofill feature that better handles dynamically updated forms, and new Contrast Control settings that let users use the same colors across websites for improved readability.

news

Canonical/Ubuntu Leftovers

posted by Roy Schestowitz on Mar 29, 2025,
updated Mar 31, 2025

Ubuntu ☛ KubeCon Europe 2025: Containers & Connections with Ubuntu

It’s hard to believe that the first KubeCon took place nearly 10 years ago. Back then, Kubernetes was still in its early days, and the world was only just beginning to understand the power of container orchestration.
Ubuntu ☛ The State of Silicon and Devices – Q1 2025 Roundup

Welcome to the first quarterly roundup on the State of Silicon and Devices by Canonical. Q1 has seen lots of announcements in the areas of Edge Hey Hi (AI) and cybersecurity.
Ubuntu News ☛ Ubuntu 25.04 (Plucky Puffin) Beta released

The Ubuntu team is pleased to announce the Beta release of the Ubuntu 25.04 Desktop, Server, and Cloud products. Ubuntu 25.04, codenamed “Plucky Puffin”, continues Ubuntu’s proud tradition of integrating the latest and greatest open source technologies into a high-quality, easy-to-use GNU/Linux distribution.

More on security:

Qualys discovers three bypasses of Ubuntu's unprivileged user namespace restrictions

The Qualys Threat Research Unit (TRU) says it has uncovered three flaws in Ubuntu's unprivileged user namespace restrictions that could allow a local attacker to gain full administrative capabilities.

Linux distributions generally allow unprivileged users to create namespaces that help in creating containers and additional sandboxing functionality for programs such as container runtimes, but that also creates a weak spot.

"Most major Linux distributions permit unprivileged users to create namespaces in which they effectively gain full administrative rights," said Saeed Abbasi, manager, vulnerability research, at Qualys. "While beneficial for creating containers and sandboxes, this significantly expands the kernel's attack surface."
New Ubuntu Linux security bypasses require manual mitigations

Three security bypasses have been discovered in Ubuntu Linux’s unprivileged user namespace restrictions, which could be enable a local attacker to exploit vulnerabilities in kernel components.

Ubuntu’s New Unprivileged User Namespace Feature Comes With New Vulnerabilities

Those running Ubuntu 23.10 and newer need to make some changes to their system configuration to deal with serious issues with the new unprivileged user namespaces feature. These namespaces should create an isolated sandbox where a user can be granted any permissions, such as root, which they might need inside that container but without granting them escalated privileges outside of that namespace. That would be a great feature, if it worked as intended. Unfortunately the default settings offer three different ways to create a new unprivileged user namespace with full root privileges for the entire system.
Ubuntu namespace vulnerability should be addressed quickly: Expert

Linux admins who have enabled the unprivileged user namespace restriction in their recent Ubuntu environments should take action to close three new vulnerabilities that allow a threat actor to bypass the supposed protection.

This warning comes after researchers at Qualys found three different ways this hardening feature can, under certain circumstances, be bypassed.

“It needs to be addressed quickly,” said Robert Beggs, CEO of Canadian incident response firm DigitalDefence, which has several Ubuntu-based applications in its portfolio, “because it facilitates other exploits. By itself, not a major thing. But if something else comes out it can be chained to these [vulnerabilities] and cause a lot of damage.”

Late one:

Qualys Finds Three Security Bypasses In Ubuntu’s Unprivileged User Namespace Restrictions

The Qualys Threat Research Unit (TRU) has uncovered three security bypasses in Ubuntu’s unprivileged user namespace restrictions.

Researchers disclosed these vulnerabilities to the Ubuntu Security Team on 15 January this year, has been working with then ever since.

Researchers found three distinct bypasses of these namespace restrictions, each of which would allow bad actors to create user namespaces with full administrative capabilities.

“These bypasses facilitate exploiting vulnerabilities in kernel components requiring powerful administrative privileges within a confined environment. The restrictions on unprivileged user namespaces were initially introduced in Ubuntu 23.10 and enabled by default in Ubuntu 24.04,” Qualys explained.

Other Recent Tux Machines' Posts

YouTuber PewDiePie Switches to Linux: PewDiePie, one of the most popular YouTubers with some 110M subscribers, has released a video detailing his switch from Windows to Linux....
Urgent Update: Kali Linux Users Must Manually Install New Repository Key: Kali Linux users must manually install a new archive signing key after the previous one was lost
Kdenlive 25.04.0 released: We are proud to announce the release of Kdenlive 25.04.0
Firefox 139 Is Now Available for Public Beta Testing, Here’s What to Expect: With Firefox 138 promoted to the stable channel today, Mozilla promoted the next major release, Firefox 139, to the beta channel for public testing, so it’s time to take a look at what to expect.
Mozilla Firefox 138 Is Now Available for Download, Here’s What’s New: Mozilla published today the final build of the Firefox 138 open-source web browser for all supported platforms ahead of the April 29th, 2025, official release, so it’s time to take a look at what’s new.
Kubernetes v1.33 and Kiwi TCMS 14.2: some releases
4MLinux 48.0 Is Now Available for Download, Powered by Linux Kernel 6.12 LTS: 4MLinux developer Zbigniew Konojacki announced today the release and general availability of 4MLinux 48.0 as the latest stable version of this mini Linux distribution featuring the lightweight JWM window manager.
Android Leftovers: Setting Up This Smart Home Device Was an Ordeal Until I Tried Using Android
Software Leftovers: Microsoft focus
5 Reasons Now Is the Right Time to Buy a Linux Laptop: Most people only consider Windows or macOS when looking at laptops
today's howtos: 7 howtos for now
Steam Client Update Fixes DLC Recognition: Steam releases a new client update that fixes DLC recognition and window startup issues
Firefox Tab Groups: Mozilla doing something useful
Canonical/Ubuntu: IdPs, Weekly Newsletter, and Vista 11 Spin/Worship: News about Ubuntu
Open Hardware/Modding: Raspberry Pi and Acorn: Some hardware picks
FSF to hold free software hackathon in honor of its fortieth anniversary: The Free Software Foundation (FSF) today announced its plans for a hackathon to improve free/libre software in honor of its fortieth anniversary
Best Free and Open Source Software: Only free and open source software is eligible for inclusion
Oshin OS is an Arch Linux distribution: Oshin OS is an Arch Linux-based free, safe, and open-source operating system for your kids and yourself
Privacy on Trial: Meta’s DOJ Battle vs. Purism’s User-Centric Philosophy: The Department of Justice’s (DOJ) current lawsuit against Meta spotlights a crucial discourse in the tech world, highlighting the fundamental right to privacy in the digital age
Make your first open source contribution: Launchpad and the Open Documentation Academy Live in Málaga
FreeBSD Wants to Know a Few Things: FreeBSD evidently found last year’s Community Survey so useful that they’re turning it into an annual event
Is Free/Open Source Software Sustainable?: Open Source has won
Games: World of Goo 2, PASS Fortress, and More: 11 stories from GamingOnLinux
Today in Techrights: Some of the latest articles
Thunderbird 138 Adds New Default Color Override for High Contrast Mode on Linux: Thunderbird 138 is out now as the latest stable version of this popular, open-source, free, and cross-platform email, address book, chat, news, and calendar client for GNU/Linux, macOS, and Windows systems.
Ubuntu, Free Software, and Openwashing: today's leftovers
Mozilla and Mozilla-less Firefox: a pair of updates
BSD and Kernel Leftovers: mostly BSD
Programming Leftovers: Development related picks
Security Leftovers: Security picks
KDE and GNOME: KDE Snap, LabPlot 2.12, and GNOME GitLab: 3 updates from projects/people
Hardware and Games, Modders and Gamers: some retro and more
Audiocasts/Shows: Destination Linux, LINUX Unplugged, Late Night Linux, and More: half a dozen links for today
Webinar Software, Mixxx 2.5.1, and GNU libsigsegv 2.15: Software news
today's howtos: last batch
GNU/Linux Leftovers: software and more
today's howtos: first batch today
Red Hat Leftovers: from the official site
Open Hardware/Modding: ESP32, Framework, and More: Hardware picks
Android Leftovers: I Tried This Cheap Android Phone. There's a Lot to Be Excited About
Avocado OS: Open-source Linux platform for embedded systems - Help Net Security: Peridio, a platform for building and maintaining advanced embedded products, has launched Avocado OS
qBittorrent 5.1 Open-Source BitTorrent Client Released as a Major Update: qBittorrent 5.1 has been released as a major update to this open-source, cross-platform, and free BitTorrent client that introduces several new features and other enhancements.
Turntable is a Universal Scrobbler App for Linux: Those looking for an easy way to “scrobble” music on Linux
NixOS Logo and Branding Update: The NixOS logo was originally designed by Simon Frankau for Haskell as part of the 2009 Haskell logo contest
Best Free and Open Source Software: Only free and open source software is eligible for inclusion
DebLight OS is a lightweight and fast Linux distribution: DebLight OS is a lightweight and fast Linux distribution, particularly well-suited for older 32-bit PCs and 64-bit PCs
Plasma Sprint 2025 – A Recap: This year’s Plasma Sprint had a very special meaning for me
Turning 21 in 6 Weeks [original]: getting there soon
LibreWolf is now in my Slackware repository: Resulting from a request in one of my other blog pages
While Windows 10 users panic, Ubuntu makes extending support easy - here's how: Think you are about to lose support for Ubuntu 20.04
Today in Techrights: Some of the latest articles
Lenovo Cuts the Windows Tax and offers Cheaper Laptops with Linux Pre-installed: Lenovo is doing something that many aren't
5 reasons NixOS is the most exciting Linux distro in years: NixOS is an open-source Linux distribution built around the Nix package manager
My favorite SSH clients for Android - and why you need them: Think you need a laptop to connect via SSH to your Linux machine
8 ways to protect your privacy on Linux and keep your data safe: Using Linux is a good start - but it is not enough
This lightning-fast Linux distro will hook you the moment you try it: Everything about Xubuntu is built for speed and simplicity
Trinity Desktop Environment R14.1.4 Released with Support for Ubuntu 25.04: Trinity Desktop Environment (TDE) R14.1.4 desktop environment has been released for nostalgic KDE 3.5 users with various new features and enhancements.
TDE R14.1.4 released!: The Trinity Desktop Environment development team is pleased to announce the immediate availability of the TDE R14.1.4 release
Free, Libre, and Open Source Software Leftovers: FOSS leftovers
HarmonyOS, Muse Pi, and Commodore OS (Linux): hardware news
today's howtos: Monday's first batch
OpenBSD 7.7 Released: a BSD milestone
Android Leftovers: This cheap Android Auto adapter was the best thing I ever bought for my car
FerenOS: A Refreshing Take on KDE Plasma That Could Win You Over: FerenOS has a polished KDE Plasma implementation and includes the customizable Vivaldi browser as the default
5 Reasons to Replace SteamOS With Bazzite (& 3 Reasons Not To): Own a Steam Deck and would like to try out an alternative operating system that's not Windows
Forget WinRAR: These Are the Best Native Archive Managers for Linux: On Linux, you can run WinRAR through Wine
Commodore OS Vision 3.0 Linux-based OS arrives to spruce up retro builds: This fan-made Linux-based OS was just released for Commodore-branded devices
5 High-Performance Linux Distros for Modern PCs and Laptops: Linux has a reputation as the operating system for old and weak hardware
5 reasons I stopped dual‑booting Linux/Windows and spun up a Type‑2 hypervisor instead: For years, I maintained a dual‑boot setup to enjoy both Linux and Windows on a single machine
8 Common Ubuntu Issues: Fixing Boot Errors, Wi-Fi Problems, and More: Ubuntu is a favorite among Linux enthusiasts for its stability, security, and user-friendly interface
Free and Open Source Software: Linux distributions come supplied with utilities to explore disk usage
NetBSD – fast, secure and highly portable Unix-like operating system: NetBSD is a free, fast, secure, and highly portable Unix-like Open Source operating system
Review: Ubuntu MATE 25.04: Linux has been criticized - and then criticized some more
This Month in KDE Apps: After a long pause, welcome to a new issue of "This Week in KDE Apps"! Every week (more or less) we cover as much as possible of what's happening in the world of KDE apps
Petition Attempts to Force OSI to Release Complete Vote Count: When it comes to Open Source Initiative’s 2025 board election
7 Linux distros you should avoid until you've mastered the command line: If you're new to Linux, skip these distros until you have plenty of experience
5 ways to use the Linux terminal on your Android phone - including my favorite: You can do a lot with the Linux terminal app for Android
WebKitGTK API Versions Demystified: WebKitGTK has a bunch of different confusing API versions
Open Hardware: Arduino, Linux, and More: hardware leftovers
CRUX 3.8 Release Notes: This page discusses the relevant changes introduced in CRUX 3.8
Today in Techrights: Some of the latest articles
Linux 6.15-rc4: "So let's see if this rc ends up avoiding any silly issues"

Tux Machines

Other Sites

LinuxGizmos.com

MINIX Elite EU715-AI Mini PC Combines Meteor Lake Performance and dual 2.5GbE Ports

Tor Project blog

New Release: Tor Browser 14.5.1

Privacy is possible – even when it feels out of reach

9to5Linux

Thunderbird 138 Adds New Default Color Override for High Contrast Mode on Linux

Firefox 139 Is Now Available for Public Beta Testing, Here’s What to Expect

4MLinux 48.0 Is Now Available for Download, Powered by Linux Kernel 6.12 LTS

Trinity Desktop Environment R14.1.4 Released with Support for Ubuntu 25.04

qBittorrent 5.1 Open-Source BitTorrent Client Released as a Major Update

Mozilla Firefox 138 Is Now Available for Download, Here’s What’s New

news

Canonical/Ubuntu Leftovers

Ubuntu ☛ KubeCon Europe 2025: Containers & Connections with Ubuntu

Ubuntu ☛ The State of Silicon and Devices – Q1 2025 Roundup

Ubuntu News ☛ Ubuntu 25.04 (Plucky Puffin) Beta released

Qualys discovers three bypasses of Ubuntu's unprivileged user namespace restrictions

New Ubuntu Linux security bypasses require manual mitigations

Ubuntu’s New Unprivileged User Namespace Feature Comes With New Vulnerabilities

Ubuntu namespace vulnerability should be addressed quickly: Expert

Qualys Finds Three Security Bypasses In Ubuntu’s Unprivileged User Namespace Restrictions

Other Recent Tux Machines' Posts